A vulnerability was found in Algovate xhs-mcp 0
Description
A vulnerability was found in Algovate xhs-mcp 0
Remediation
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
20 vulnerabilities from LG
← Back to all CVEsA vulnerability was found in Algovate xhs-mcp 0
A vulnerability was found in Algovate xhs-mcp 0
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
An insufficient encryption vulnerability in the GeoVision GV-IP Device Utility allows attackers on the same LAN to decrypt administrative credentials...
An insufficient encryption vulnerability in the GeoVision GV-IP Device Utility allows attackers on the same LAN to decrypt administrative credentials from broadcast traffic.
Update LG Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
MailGates/MailAudit developed by Openfind has a CRLF Injection vulnerability, allowing unauthenticated remote attackers to exploit this vulnerability...
MailGates/MailAudit developed by Openfind has a CRLF Injection vulnerability, allowing unauthenticated remote attackers to exploit this vulnerability to read system files
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
MailGates/MailAudit developed by Openfind has a Stack-based Buffer Overflow vulnerability, allowing unauthenticated remote attackers to control the pr...
MailGates/MailAudit developed by Openfind has a Stack-based Buffer Overflow vulnerability, allowing unauthenticated remote attackers to control the program's execution flow and execute arbitrary code.
---METADATA---
VENDOR: Openfind
PRODUCT: MailGates/MailAudit
AFFECTED_VERSIONS: See vendor advisory
---END_METADATA---
Description Summary:
Openfind MailGates/MailAudit is vulnerable to a stack-based buffer overflow, allowing unauthenticated remote code execution.
Executive Summary:
A critical stack-based buffer overflow in MailGates/MailAudit allows unauthenticated attackers to execute arbitrary code with elevated privileges.
Vulnerability Details
CVE-ID: CVE-2026-6350
Affected Software: Openfind MailGates/MailAudit
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: The application fails to perform adequate bounds checking on incoming data, resulting in a stack-based buffer overflow. This allows a remote, unauthenticated attacker to overwrite the program's execution flow and execute arbitrary code.
Business Impact
With a CVSS score of 9.8, this represents a critical risk to the mail server's security. Successful exploitation grants attackers full control over the appliance, potentially allowing them to intercept or spoof communications and pivot into the internal network.
Remediation Plan
Immediate Action: Apply the latest security patches provided by Openfind immediately.
Proactive Monitoring: Monitor mail server traffic for unusual packet structures or unexpected service restarts indicative of exploitation attempts.
Compensating Controls: Restrict access to the mail management interface to trusted IP ranges and employ an Intrusion Prevention System (IPS) to detect buffer overflow signatures.
Exploitation Status
Public Exploit Available: Unknown
Analyst Notes: As of April 16, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Buffer overflow vulnerabilities in mail appliances are highly dangerous. Organizations should prioritize patching immediately to prevent remote code execution and potential total system compromise.
Update LG Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
A vulnerability has been found in PromtEngineer localGPT up to 4d41c7d1713b16b216d8e062e51a5dd88b20b054
A vulnerability has been found in PromtEngineer localGPT up to 4d41c7d1713b16b216d8e062e51a5dd88b20b054
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
A flaw has been found in PromtEngineer localGPT up to 4d41c7d1713b16b216d8e062e51a5dd88b20b054
A flaw has been found in PromtEngineer localGPT up to 4d41c7d1713b16b216d8e062e51a5dd88b20b054
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
A vulnerability was detected in PromtEngineer localGPT up to 4d41c7d1713b16b216d8e062e51a5dd88b20b054
A vulnerability was detected in PromtEngineer localGPT up to 4d41c7d1713b16b216d8e062e51a5dd88b20b054
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Netatalk 1
Netatalk 1
---METADATA---
VENDOR: LG
PRODUCT: Netatalk 1
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
CONFIDENCE: low
MISSING: versions, patch, technical_details
---END_METADATA---
Description Summary:
A security vulnerability has been identified in the Netatalk 1 implementation used within LG products.
Executive Summary:
A vulnerability in Netatalk 1 within LG products presents a security risk that requires immediate vendor guidance.
Vulnerability Details
CVE-ID: CVE-2026-44053
Affected Software: LG Netatalk 1
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: The vulnerability pertains to the Netatalk 1 service, though specific technical details regarding the vector or authentication requirements are currently sparse. Further investigation is required to determine the precise nature of the flaw.
Business Impact
With a CVSS score of 7.4, this vulnerability is categorized as High, suggesting the potential for significant security impact. Unauthorized exploitation could lead to service instability or potential data exposure within the affected LG environment.
Remediation Plan
Immediate Action: Check the LG security portal or vendor advisory page for specific firmware updates or software patches.
Proactive Monitoring: Monitor system logs for anomalous activity specifically originating from the Netatalk service.
Compensating Controls: Restrict access to the affected service via firewall rules until a validated patch is applied.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of May 22, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Security teams should maintain a high state of alert and verify the presence of Netatalk 1 in their environment. Prompt application of vendor-supplied updates is essential to maintaining the security posture of the affected infrastructure.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
GeoVision GV-IP Device Utility 9.0.5 uses insufficient encryption for administrative credentials, allowing attackers to intercept and decrypt sensitiv...
GeoVision GV-IP Device Utility 9.0.5 uses insufficient encryption for administrative credentials, allowing attackers to intercept and decrypt sensitive data over local broadcast traffic.
---METADATA---
VENDOR: GeoVision
PRODUCT: GV-IP Device Utility
AFFECTED_VERSIONS: 9.0.5
---END_METADATA---
Description Summary:
GeoVision GV-IP Device Utility 9.0.5 uses insufficient encryption for administrative credentials, allowing attackers to intercept and decrypt sensitive data over local broadcast traffic.
Executive Summary:
An insufficient encryption flaw in the GeoVision GV-IP Device Utility allows local network attackers to intercept and decrypt administrative credentials, potentially leading to full unauthorized device control.
Vulnerability Details
CVE-ID: CVE-2026-42363
Affected Software: GeoVision GV-IP Device Utility
Affected Versions: 9.0.5
Vulnerability: The utility broadcasts administrative credentials over UDP using a weak, obfuscated cryptographic scheme where the symmetric key is transmitted within the same packet. An attacker on the same local network can capture this traffic and easily derive the credentials to gain unauthorized access to the device.
Business Impact
With a CVSS score of 9.3, this vulnerability poses a significant risk to the physical and logical security of the network. An attacker capturing these credentials gains full administrative access to GeoVision devices, enabling them to modify configurations, change network settings, or disable security monitoring, which directly impacts physical site security and system availability.
Remediation Plan
Immediate Action: Update the GV-IP Device Utility to the latest version provided by GeoVision and transition to more secure management protocols if available.
Proactive Monitoring: Monitor local network broadcast traffic for suspicious UDP packets directed toward or originating from management utilities.
Compensating Controls: Implement network segmentation to isolate devices and management workstations, limiting the ability of unauthorized entities to sniff traffic on the same LAN.
Exploitation Status
Public Exploit Available: unknown
Analyst Notes: As of April 27, 2026, there is no public information indicating active exploitation of this vulnerability. However, because the flaw is easily reproducible by an attacker on the same network, the potential for exploitation is high.
Analyst Recommendation
The reliance on security through obscurity for credential transmission is a critical design failure. Administrators should immediately restrict access to the broadcast domain where these devices reside and apply the vendor’s security patches as soon as they are made available to protect administrative credentials from interception.
Update LG Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (...
Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
The fast-jwt library is vulnerable to an algorithm confusion attack due to a flawed regex implementation that fails to properly sanitize leading white...
The fast-jwt library is vulnerable to an algorithm confusion attack due to a flawed regex implementation that fails to properly sanitize leading whitespace.
---METADATA---
VENDOR: fast-jwt
PRODUCT: fast-jwt
AFFECTED_VERSIONS: 6.1.0 and earlier
---END_METADATA---
Description Summary:
The fast-jwt library is vulnerable to an algorithm confusion attack due to a flawed regex implementation that fails to properly sanitize leading whitespace.
Executive Summary:
The fast-jwt library contains a critical flaw that enables JWT algorithm confusion attacks, allowing attackers to bypass signature verification.
Vulnerability Details
CVE-ID: CVE-2026-34950
Affected Software: fast-jwt
Affected Versions: 6.1.0 and earlier
Vulnerability: The publicKeyPemMatcher regex uses an anchor that is bypassed by leading whitespace in the key string. This regression re-enables a known JWT algorithm confusion vulnerability, allowing an attacker to manipulate token headers and bypass authentication mechanisms.
Business Impact
With a CVSS score of 9.1, this vulnerability poses a severe threat to authentication integrity. An attacker can forge JWT tokens, allowing them to impersonate any user, including administrators, leading to unauthorized access to protected resources and sensitive data.
Remediation Plan
Immediate Action: Update the fast-jwt library to the latest patched version that specifically addresses this regex anchor flaw.
Proactive Monitoring: Monitor authentication logs for patterns of suspicious JWT usage, such as tokens with unexpected algorithm headers or malformed key structures.
Compensating Controls: Implement strict server-side validation of JWT headers and ensure that only expected signing algorithms are permitted for verification.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of April 6, 2026, there is no public information indicating active exploitation of this vulnerability. However, the re-introduction of a previously known vulnerability makes this a high-risk target.
Analyst Recommendation
This vulnerability represents a significant regression in security. It is imperative that all applications relying on fast-jwt for authentication are updated immediately to prevent potential exploitation of the algorithm confusion flaw.
Update LG Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm
nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm
---METADATA---
VENDOR: Nimiq
PRODUCT: core-rs-albatross
AFFECTED_VERSIONS: See vendor advisory for affected versions
---END_METADATA---
Description Summary:
The core-rs-albatross Rust implementation of the Nimiq Proof-of-Stake protocol contains a high-severity vulnerability affecting its consensus mechanism.
Executive Summary:
A high-severity vulnerability in the Nimiq core-rs-albatross implementation could compromise the consensus and stability of the Nimiq blockchain protocol.
Vulnerability Details
CVE-ID: CVE-2026-33184
Affected Software: Nimiq core-rs-albatross
Affected Versions: See vendor advisory for affected versions
Vulnerability: This vulnerability affects the Rust implementation of the Albatross consensus algorithm. An attacker could potentially exploit this flaw to disrupt the Proof-of-Stake protocol, leading to network instability or improper validation of blockchain transactions.
Business Impact
For organizations and users participating in the Nimiq network, this vulnerability poses a risk to the integrity of the blockchain and the availability of the network. The CVSS score of 7.5 highlights the potential for significant disruption to financial operations and the overall trust in the protocol's security.
Remediation Plan
Immediate Action: Update the core-rs-albatross node software to the latest secure version provided by the Nimiq development team.
Proactive Monitoring: Monitor node health and consensus participation metrics for anomalies that could indicate an attempted exploit of the protocol.
Compensating Controls: Ensure that blockchain nodes are running in a secure environment with restricted network access to prevent direct exposure to malicious actors.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of April 4, 2026, there is no public information indicating active exploitation of this vulnerability. Consensus-level vulnerabilities are highly sensitive and require immediate attention from all network participants.
Analyst Recommendation
All Nimiq network participants using the Rust implementation should update their nodes immediately. Maintaining the integrity of the consensus algorithm is paramount to the security of the entire blockchain ecosystem.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Go ShangMi (Commercial Cryptography) Library (GMSM) is a cryptographic library that covers the Chinese commercial cryptographic public algorithms SM2/...
Go ShangMi (Commercial Cryptography) Library (GMSM) is a cryptographic library that covers the Chinese commercial cryptographic public algorithms SM2/SM3/SM4/SM9/ZUC
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm
nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
InfCode's terminal auto-execution module contains a critical command filtering vulnerability that renders its blacklist security mechanism completely...
InfCode's terminal auto-execution module contains a critical command filtering vulnerability that renders its blacklist security mechanism completely ineffective
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm
nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm
---METADATA---
VENDOR: Nimiq
PRODUCT: core-rs-albatross
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
A security vulnerability exists in the Nimiq Proof-of-Stake protocol implementation within the Albatross consensus algorithm, potentially impacting network stability or integrity.
Executive Summary:
A high-severity vulnerability in the Nimiq core-rs-albatross implementation poses a significant risk to the integrity and reliability of the Albatross consensus mechanism.
Vulnerability Details
CVE-ID: CVE-2026-28402
Affected Software: Nimiq core-rs-albatross
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: This vulnerability affects the Rust-based implementation of the Nimiq Proof-of-Stake protocol. While specific technical details regarding the exploit vector are limited, the flaw resides within the Albatross consensus algorithm logic, potentially allowing an attacker to disrupt network synchronization or validator operations.
Business Impact
A successful exploit of this vulnerability could lead to significant network downtime, loss of consensus, or the potential for double-spending if the Proof-of-Stake mechanism is compromised. With a CVSS score of 7.1, this is classified as a High-severity issue, representing a substantial risk to the financial integrity and availability of the Nimiq blockchain ecosystem.
Remediation Plan
Immediate Action: Administrators and node operators should apply the latest security updates provided by the Nimiq development team immediately to secure the Albatross consensus implementation.
Proactive Monitoring: Monitor node logs for unusual consensus delays, frequent re-organizations, or anomalous peer-to-peer communication patterns that may indicate exploitation attempts.
Compensating Controls: Ensure that nodes are behind well-configured firewalls and limit peer connections to known, trusted participants where possible to reduce the attack surface.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of March 1, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw within a core consensus protocol, the potential for exploitation is high once technical details are reverse-engineered.
Analyst Recommendation
The severity of this flaw necessitates immediate attention from all stakeholders operating Nimiq infrastructure. Failure to patch may lead to a total loss of confidence in the network's consensus state. We strongly recommend applying the official vendor updates immediately to mitigate the risk of protocol-level exploitation.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
joserfc is a Python library that provides an implementation of several JSON Object Signing and Encryption (JOSE) standards
joserfc is a Python library that provides an implementation of several JSON Object Signing and Encryption (JOSE) standards
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
The newbee-mall application uses unsalted MD5 hashing for password storage, allowing attackers who obtain the database to rapidly recover plaintext cr...
The newbee-mall application uses unsalted MD5 hashing for password storage, allowing attackers who obtain the database to rapidly recover plaintext credentials via offline attacks.
---METADATA---
VENDOR: newbee-mall
PRODUCT: newbee-mall
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
The newbee-mall application uses unsalted MD5 hashing for password storage, allowing attackers who obtain the database to rapidly recover plaintext credentials via offline attacks.
Executive Summary:
Weak password hashing in newbee-mall exposes user credentials to rapid offline cracking, significantly increasing the risk of account takeover following a data breach.
Vulnerability Details
CVE-ID: CVE-2026-26219
Affected Software: newbee-mall
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: The application stores passwords using the MD5 algorithm without per-user salts or computational cost controls. This makes the stored hashes highly susceptible to rapid recovery through rainbow tables or brute-force attacks if the database is compromised.
Business Impact
A CVSS score of 9.1 indicates a critical risk. If attackers gain access to database backups or exports, they can quickly decrypt administrative and user passwords, leading to widespread account takeovers and the potential compromise of other systems where users have reused their passwords.
Remediation Plan
Immediate Action: Update the application to a version that implements secure password hashing (e.g., Argon2 or bcrypt) and force a password reset for all users upon the next login.
Proactive Monitoring: Monitor for suspicious database access or unauthorized attempts to export user tables.
Compensating Controls: Implement database-at-rest encryption and strict access controls to prevent unauthorized personnel from obtaining the password hashes in the first place.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of Feb 12, 2026, there is no public information indicating active exploitation. This vulnerability is typically exploited post-compromise to maximize the impact of a data breach.
Analyst Recommendation
Modern security standards require robust, salted hashing algorithms. Organizations should update newbee-mall immediately to a version that supports secure credential storage and educate users on the importance of unique passwords to mitigate the impact of hash disclosure.
Update LG Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
Since the encryption algorithm used to protect firmware updates is itself encrypted using key material available to an attacker (or anyone paying atte...
Since the encryption algorithm used to protect firmware updates is itself encrypted using key material available to an attacker (or anyone paying attention), the firmware updates may be altered by an unauthorized user, and then trusted by a Unitree product, such as the Unitree Go2 and other models
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
---METADATA---
VENDOR: LG
PRODUCT: GV-IP Device Utility
AFFECTED_VERSIONS: 9.0.5
---END_METADATA---
Description Summary:
An insufficient encryption vulnerability in the GeoVision GV-IP Device Utility allows attackers on the same LAN to decrypt administrative credentials from broadcast traffic.
Executive Summary:
A critical vulnerability in the GeoVision GV-IP Device Utility allows local attackers to intercept and decrypt administrative credentials, leading to full control over network-connected devices.
Vulnerability Details
CVE-ID: CVE-2026-7161
Affected Software: GeoVision GV-IP Device Utility
Affected Versions: 9.0.5
Vulnerability: The utility uses a flawed cryptographic implementation where the symmetric key is included in the broadcast packet. An attacker on the same LAN can sniff this traffic and easily decrypt the administrative credentials.
Business Impact
With a CVSS score of 9.3, this flaw enables an attacker to gain full control over Geovision devices on the network. This can lead to the modification of IP addresses, factory resets, and unauthorized access to security camera feeds, severely impacting organizational security.
Remediation Plan
Immediate Action: Update to the latest version of the GV-IP Device Utility and, where possible, transition to more secure, authenticated management protocols.
Proactive Monitoring: Monitor network traffic for suspicious broadcast activity and implement network segmentation to isolate device management traffic from general user traffic.
Compensating Controls: Ensure that management interfaces are restricted to dedicated VLANs and monitor for any unauthorized device configuration changes.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of May 4, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
The reliance on insecure encryption for credential management represents a significant security failure. Organizations must update the utility and restrict network access to broadcast traffic to mitigate the risk of credential theft.